Legacy Firewall Modernization at Scale: 55 Sites in 60 Days

A Fragile System Forced to the Breaking Point

A regional organization operating across 55 locations had relied on an aging on-premises firewall infrastructure for years. The system had a well-documented history of limited network visibility, recurring downtime, and sensitivity to configuration changes — challenges the internal team had learned to work around rather than resolve.

The situation became critical when the organization’s data center was acquired by a larger provider. As part of the transition, the new data center assigned an entirely new IP range to the organization and came with a significantly higher monthly cost. What was already a fragile system now faced a forced, large-scale reconfiguration under a hard deadline — with no margin for extended downtime across a distributed, operational network.

More Than a Technical Challenge — A Risk Management Problem

Reconfiguring 55 sites on a legacy system that was already prone to instability wasn’t just a technical challenge — it was a risk management problem. Any misconfiguration could cascade across locations, and the existing architecture offered little visibility to diagnose or contain issues quickly.

Adding complexity, the reconfiguration couldn’t stop at the firewall. On-premises facility infrastructure — including key fob access control systems and NVR security camera systems — were tied to the existing network and would need to be migrated or reconfigured alongside every firewall. The organization had roughly 60 to 75 days to complete the entire transition before the data center cutover deadline.

Clean Migration to Modern SD-WAN Architecture

NetSphere assessed the environment and recommended replacing the legacy Cisco ASA firewalls with a Cisco Meraki SD-WAN solution across all 55 locations. Rather than trying to reconfigure a brittle system under pressure, the better path was a clean migration to a modern, cloud-managed architecture that would solve the immediate deadline while also eliminating the underlying infrastructure problems for the long term.

Meraki’s centralized dashboard meant configurations could be deployed and monitored from a single pane of glass, dramatically reducing the per-site effort and risk. SD-WAN also addressed the bandwidth bottlenecks that had been a persistent issue, and the shift to a cloud-managed model reduced the organization’s dependence on the data center environment entirely — turning a forced migration into a strategic upgrade.

Deadline Met. Infrastructure Transformed.

All 55 sites were successfully migrated within the 60-day window. Beyond meeting the deadline, the project delivered lasting improvements across the organization’s entire network infrastructure.

• During the rollout, the team discovered and developed a working integration between Keri Panel access control systems and the Meraki infrastructure — solving a challenge with no documented solution and ensuring facility security systems transitioned without requiring full hardware replacement.
• WiFi performance improved organization-wide as part of the upgrade, with bandwidth speeds increasing approximately 3× compared to baseline measurements on the legacy system.
• The network team gained significantly improved visibility across all 55 locations, reducing the time and effort required to identify and resolve issues. What previously required on-site investigation could now be diagnosed and often resolved remotely through the Meraki dashboard.
• The organization emerged from a high-pressure, externally-forced deadline with a more resilient, more capable network than it had before — and a reduced dependency on third-party data center infrastructure going forward.